VFF - The signal in the noise
VFF - The signal in the noise
News

AI Can Now Find Zero-Days. Your Patch Process Isn't Ready.

VentureBeat AI
Read original
Share
AI Can Now Find Zero-Days. Your Patch Process Isn't Ready.

Anthropic's Claude Mythos model can autonomously discover zero-day vulnerabilities, closing a critical safety margin that previously existed because AI could only exploit known CVEs. Exploitation timelines have collapsed to hours rather than days, rendering traditional patch windows ineffective. Organizations must overhaul vulnerability prioritization and authorization controls to account for AI-driven attack speeds.

TL;DR

  • Claude Mythos discovered thousands of zero-day vulnerabilities across major operating systems and browsers, achieving 83.1% on vulnerability reproduction benchmarks
  • Recent exploits occurred in under 10 hours post-disclosure, before patches were available, invalidating assumptions about safe patch windows
  • CVSS-only prioritization is insufficient; a three-layer filter using CISA KEV status, EPSS scores, and CVSS achieved 18x efficiency gains and 85.6% coverage of exploited vulnerabilities
  • Authorization policies for privileged agent credentials have not been tested against AI behavior, creating measurable security gaps like Docker's CVE-2026-34040

Why It Matters

The discovery that AI can autonomously find zero-days eliminates the assumption that enterprises have time to patch vulnerabilities before exploitation. Exploitation is now happening faster than patches can be developed and deployed, fundamentally breaking the traditional vulnerability management timeline. This requires immediate changes to how organizations prioritize and respond to security threats.

Business Impact

Enterprises cannot rely on their existing patch management processes to protect against AI-driven exploitation. The cost of discovering and exploiting vulnerabilities has dropped dramatically (under $20,000 for some campaigns), making attacks more economically feasible. Organizations that do not restructure their vulnerability prioritization and authorization controls face significantly elevated breach risk.

Key Implications

  • Vulnerability prioritization must shift from CVSS scores alone to a three-layer model incorporating active exploitation status, predicted exploitation likelihood, and severity baseline
  • Patch windows are no longer a reliable defensive assumption; organizations must assume exploitation can occur within hours of disclosure
  • Authorization systems and privileged access controls must be audited and redesigned to account for AI agent behavior, not just human operators

What to Watch

Monitor whether organizations adopt the three-layer prioritization framework and how quickly they can operationalize it. Track whether authorization bypass vulnerabilities in common platforms (Docker, Kubernetes, cloud providers) become more prevalent. Watch for industry guidance on AI-aware security architecture and whether vendors update their authorization plugins to account for AI agent behavior patterns.

Share
AI SecurityAnthropicAI Risk & Security

Our Briefing

Weekly signal. No noise. Built for founders, operators, and AI-curious professionals.

No spam. Unsubscribe any time.

Related stories

OpenAI Launches Lockdown Mode to Reduce Prompt Injection Risks
AI SecurityTrendingNews

OpenAI Launches Lockdown Mode to Reduce Prompt Injection Risks

OpenAI has introduced Lockdown Mode, a security feature designed to reduce the risk of sensitive data exposure from prompt injection attacks in ChatGPT. While the mode does not eliminate vulnerability to such attacks entirely, it aims to lower the likelihood that confidential information gets shared when systems are compromised. The feature addresses growing concerns about AI security as organizations integrate large language models into sensitive workflows.

by Anthony Ha2 days ago· TechCrunch AI
AI agents become targets as companies skip security basics
AI SecurityNews

AI agents become targets as companies skip security basics

Attackers exploited Meta's AI customer support agent to hijack Instagram accounts by simply asking the agent to link accounts to attacker-controlled email addresses. The agent complied without proper verification, enabling takeovers of high-value accounts including the dormant Obama White House account. The incident reveals that as companies deploy AI agents to handle sensitive tasks, basic security oversights create exploitable vulnerabilities that differ fundamentally from the advanced AI hacking scenarios that have dominated recent security discourse.

by Grace Huckins5 days ago· MIT Technology Review
Google's Gemma 4 12B Brings Multimodal AI to Offline Laptops
AI SecurityTrendingNews

Google's Gemma 4 12B Brings Multimodal AI to Offline Laptops

Google released Gemma 4 12B, an 11.95-billion-parameter open-source model that runs entirely on a standard 16GB enterprise laptop without requiring cloud connectivity. The model uses an encoder-free architecture that processes audio and video directly without secondary processing modules, reducing latency and memory overhead. It includes a 256K token context window, native tool-use capabilities, and step-by-step reasoning mode, making it suitable for enterprises with strict data privacy requirements.

by carl.franzen@venturebeat.com (Carl Franzen)6 days ago· VentureBeat AI
Cyera raises $300M at $12B valuation despite operating losses
AI SecurityNews

Cyera raises $300M at $12B valuation despite operating losses

Cyera, a cybersecurity company, is raising approximately $300 million in a funding round led by Evolution Equity Partners, targeting a $12 billion valuation. The round values the company at an 80x ARR multiple despite ongoing operating losses. The funding reflects investor confidence in the cybersecurity sector even as the company has not yet achieved profitability.

by Marina Temkin7 days ago· TechCrunch AI